Lucene search
HistoryOct 06, 2023 - 8:15 p.m.
CVE-2023-5452
cve-2023-5452
cross-site scripting
xss
github
snipe/snipe-it
nvd
5.4 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
0.0004 Low
EPSS
Percentile
14.2%
Cross-site Scripting (XSS) - Stored in GitHub repository snipe/snipe-it prior to v6.2.2.
Affected configurations
Node
snipeitappsnipe-itRange<6.2.2
| CPE | Name | Operator | Version |
|---|---|---|---|
| snipeitapp:snipe-it | snipeitapp snipe-it | lt | 6.2.2 |
CNA Affected
[
{
"vendor": "snipe",
"product": "snipe/snipe-it",
"versions": [
{
"version": "unspecified",
"lessThan": "v6.2.2",
"status": "affected",
"versionType": "custom"
}
]
}
]Related
exploitdb
exploitdb
SnipeIT 6.2.1 - Stored Cross Site Scripting
2024-03-12 00:00:00
packetstorm
packetstorm
SnipeIT 6.2.1 Cross Site Scripting
2024-03-13 00:00:00
cvelist
cvelist
CVE-2023-5452 Cross-site Scripting (XSS) - Stored in snipe/snipe-it
2023-10-06 19:27:24
veracode
veracode
Cross Site Scripting (XSS)
2023-10-10 04:08:31
huntr
huntr
Stored Cross Site Scripting (XSS)
2023-10-05 16:30:08
prion
prion
Cross site scripting
2023-10-06 20:15:00
github
github
Cross-site Scripting in snipe/snipe-it
2023-10-06 21:30:49
osv
osv
Cross-site Scripting in snipe/snipe-it
2023-10-06 21:30:49
CVE-2023-5452
2023-10-06 20:15:11
nvd
nvd
CVE-2023-5452
2023-10-06 20:15:11
zdt
zdt
SnipeIT 6.2.1 - Stored Cross Site Scripting Vulnerability
2024-03-12 00:00:00
5.4 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
0.0004 Low
EPSS
Percentile
14.2%
Related for CVE-2023-5452